Systems and methods for providing secure access to vehicle systems
Abstract
In some embodiments, apparatuses and methods are provided herein useful to allowing a connection to a vehicle. In some implementations, a method comprises receiving, by an authorization server from a remote device, a connection request for the vehicle, verifying, by the authorization server, the connection request, in response to verifying the connection request, generating by the authorization server, an authorization certificate, transmitting, by the authorization server, the authorization certificate, receiving, by the vehicle, the authorization certificate, authenticating, by the vehicle, the authorization certificate, and in response to the authenticating the authorization certificate, activating, by the vehicle, a vehicle communication system.
Claims
exact text as granted — not AI-modifiedWhat is claimed is:
1 . A method for allowing a connection to a vehicle, the method comprising:
receiving, by an authorization server from a remote device, a connection request for the vehicle; verifying, by the authorization server, the connection request; in response to verifying the connection request, generating by the authorization server, an authorization certificate; transmitting, by the authorization server, the authorization certificate; receiving, by the vehicle, the authorization certificate; authenticating, by the vehicle, the authorization certificate; and in response to the authenticating the authorization certificate, activating, by the vehicle, a vehicle communication system.
2 . The method of claim 1 , wherein the connection request includes information associated with the connection request, wherein the information associated with the connection request includes a vehicle identifier, a make of the vehicle, a model of the vehicle, a trim of the vehicle, diagnostic information for the vehicle, a type of connection requested, a type of service and operations to be performed, an indication of vehicle systems to be accessed by the remote device, a duration of access requested, a time of access requested, an identity of an individual from which the connection request was received, a type of facility from which the connection request was received, information associated with the remote device, information associated with devices to be communicatively coupled to the vehicle, or any combination thereof.
3 . The method of claim 2 , further comprising:
determining, based on the information associated with the connection request, that a scope of connection to the vehicle is inconsistent with the information associated with the connection request; and in response to the determining that the scope of the connection to the vehicle is inconsistent with the information associated with the connection request, deactivating, by the vehicle, the vehicle communication system.
4 . The method of claim 1 , further comprising:
encrypting, by the authorization server, the authorization certificate, wherein the authenticating the authorization certificate includes decrypting the authorization certificate.
5 . The method of claim 1 , wherein the verifying the connection request includes verifying operational details included in the connection request, the method further comprising:
in response to the verifying the connection request, including, in the authorization certificate by the authorization server, operational authorizations, wherein the operational authorizations indicate allowed operational roles associated with the connection request.
6 . The method of claim 5 , further comprising:
determining that the connection to the vehicle is outside of a scope of the operational authorizations; and deactivating the vehicle communication system.
7 . The method of claim 1 , wherein the vehicle communication system is an onboard diagnostic system, and wherein the activating the vehicle communication system comprises activating an onboard diagnostic port of the vehicle.
8 . The method of claim 1 , further comprising:
in response to receipt of the connection request for the vehicle, generating an owner prompt by the authorization server; transmitting, by the authorization server to a user device associated with an owner of the vehicle, the owner prompt; receiving, from the user device, approval of the owner prompt; wherein the activating the vehicle communication system is further in response to the approval of the owner prompt.
9 . The method of claim 8 , wherein the owner prompt includes a vehicle identifier, a make of the vehicle, diagnostic information for the vehicle, a type of connection requested, a type of service and operations to be performed, an indication of vehicle systems to be accessed by the remote device, a duration of access requested, a time of access requested, an identity of an individual from which the connection request was received, a type of facility from which the connection request was received, information associated with the remote device, information associated with devices to be communicatively coupled to the vehicle, or any combination thereof.
10 . The method of claim 1 , further comprising:
identifying, by the vehicle based on the authorization certificate, a first vehicle system to which access is required; and providing access, via the vehicle communication system, to the first vehicle system.
11 . A system for allowing a connection to a vehicle, the system comprising:
an authorization server, wherein the authorization server is configured to:
receive, from a remote device, a connection request for the vehicle;
verify the connection request;
in response to verifying the connection request, generate an authorization certificate; and
transmit the authorization certificate; and
the vehicle, wherein the vehicle is configured to:
authenticate the authorization certificate; and
in response to authenticating the authorization certificate, activate a vehicle communication system.
12 . The system of claim 11 , wherein the connection request includes information associated with the connection request, wherein the information associated with the connection request includes a vehicle identifier, a make of the vehicle, a model of the vehicle, a trim of the vehicle, diagnostic information for the vehicle, a type of connection requested, a type of service and operations to be performed, an indication of vehicle systems to be accessed by the remote device, a duration of access requested, a time of access requested, an identity of an individual from which the connection request was received, a type of facility from which the connection request was received, information associated with the remote device, information associated with devices to be communicatively coupled to the vehicle, or any combination thereof.
13 . The system of claim 12 , wherein the duration of access requested is provided to the vehicle, and wherein the vehicle is further configured to:
determine, based on the information associated with the connection request, that a scope of connection to the vehicle is inconsistent with the information associated with the connection request; and in response to the determining that the scope of the connection to the vehicle is inconsistent with the information associated with the connection request, deactivate the vehicle communication system.
14 . The system of claim 11 , wherein the authorization server is further configured to:
encrypt the authorization certificate, wherein the vehicle authenticates the authorization certificate by decrypting the authorization certificate.
15 . The system of claim 11 , wherein the authorization server verifies the connection request by verifying operational details included in the connection request, and wherein the authorization server is further configured to:
in response to verifying the connection request, include, in the authorization certificate, operational authorizations, wherein the operational authorizations indicate allowed operational roles associated with the connection request.
16 . The system of claim 15 , wherein the authorization server is further configured to:
determine that the connection to the vehicle is outside of a scope of the operational authorizations; and deactivate the vehicle communication system.
17 . The system of claim 11 , wherein the vehicle communication system is an onboard diagnostic system, and wherein the activating the vehicle communication system comprises activating an onboard diagnostic port of the vehicle.
18 . The system of claim 11 , wherein the authorization server is further configured to:
in response to receipt of the connection request for the vehicle, generate an owner prompt; transmit, to a user device associated with an owner of the vehicle, the owner prompt; and receive, from the user device, approval of the owner prompt; wherein the vehicle communication system is activated further in response to the approval of the owner prompt.
19 . The system of claim 18 , wherein the owner prompt includes a vehicle identifier, a make of the vehicle, diagnostic information for the vehicle, a type of connection requested, a type of service and operations to be performed, an indication of vehicle systems to be accessed by the remote device, a duration of access requested, a time of access requested, an identity of an individual from which the connection request was received, a type of facility from which the connection request was received, information associated with the remote device, information associated with devices to be communicatively coupled to the vehicle, or any combination thereof.
20 . The system of claim 11 , wherein the vehicle is further configured to:
identify, based on the authorization certificate, a first vehicle system to which access is required; and provide access, via the vehicle communication system, to the first vehicle system.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.